PRNG: Ensure seeds are generated securely

mia-pi-git · mia-pi-git · commit 1bdecae6049f · 2025-01-19T21:32:49.000-06:00
diff --git a/sim/prng.ts b/sim/prng.ts
@@ -14,6 +14,7 @@
 
 import {Chacha20} from 'ts-chacha20';
 import {Utils} from '../lib/utils';
+import * as crypto from 'crypto';
 
 export type PRNGSeed = `${'sodium' | 'gen5' | number},${string}`;
 export type SodiumRNGSeed = ['sodium', string];
@@ -212,11 +213,7 @@ export class SodiumRNG implements RNG {
 	static generateSeed(): SodiumRNGSeed {
 		return [
 			'sodium',
-			// 32 bits each, 128 bits total (16 bytes)
-			Math.trunc(Math.random() * 2 ** 32).toString(16).padStart(8, '0') +
-				Math.trunc(Math.random() * 2 ** 32).toString(16).padStart(8, '0') +
-				Math.trunc(Math.random() * 2 ** 32).toString(16).padStart(8, '0') +
-				Math.trunc(Math.random() * 2 ** 32).toString(16).padStart(8, '0'),
+			crypto.randomBytes(16).toString('hex'),
 		];
 	}
 }
